Sign-up

VARIoT news about IoT security

Google Patches Android Zero-Day Exploited in Targeted Attacks | SecurityWeek.Com

Trust: 4.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 16, 2022, midnight
 Vulnerabilities: privilege escalation
Affected productsExternal IDs
vendor: google model: android
vendor: google model: pixel
db: NVD ids: CVE-2021-1048

ZERO-DAY VULNERABILITIES FOUND IN CANON IMAGECLASS AND HP COLOR LASERJET PRO PRINTERS AT PWN2OWN " Cyber Security

Trust: 3.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Nov. 5, 2021, 11:27 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: samsung model: printers
vendor: samsung model: galaxy
vendor: samsung model: samsung
vendor: samsung model: samsung galaxy
vendor: sonos model: sonos

Schneier on Security

Trust: 3.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Dec. 17, 2021, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: squid model: squid

Layered Security for the Next One Trillion Devices - ArmĀ®

Trust: 3.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs

NVD - CVE-2021-40116

Related entries in the VARIoT vulnerabilities database: VAR-202110-1352

Trust: 5.5

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco systems model: firepower_threat_defense
vendor: cisco systems model: cisco systems
vendor: cisco systems model: firepower_management_center
vendor: cisco model: firepower_threat_defense
vendor: cisco model: cisco systems
vendor: cisco model: firepower_management_center
vendor: snort model: snort
db: NVD ids: CVE-2021-40116

NVD - CVE-2021-34697

Related entries in the VARIoT vulnerabilities database: VAR-202109-0758

Trust: 5.5

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: cisco systems model: cisco systems
vendor: cisco systems model: ios xe
vendor: cisco systems model: ios xe software
vendor: cisco systems model: cisco ios
vendor: cisco systems model: cisco ios xe
vendor: cisco model: cisco systems
vendor: cisco model: ios xe
vendor: cisco model: ios xe software
vendor: cisco model: cisco ios
vendor: cisco model: cisco ios xe
db: NVD ids: CVE-2021-34697

CVE security vulnerability database. Security vulnerabilities, exploits, references and more

Related entries in the VARIoT vulnerabilities database: VAR-202110-1693, VAR-202110-1256, VAR-202110-1542, VAR-202110-0874

Trust: 5.25

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: path traversal, input validation vulnerability, denial of service...
Affected productsExternal IDs
vendor: mesh model: mesh
vendor: skyworth model: penguin aurora box
vendor: cisco model: meeting
vendor: cisco model: cisco meeting server
vendor: cisco model: firepower
vendor: cisco model: 300 series managed switches
vendor: cisco model: small business 500 series stackable managed switches
vendor: cisco model: cisco meeting
vendor: cisco model: series managed switches
vendor: cisco model: series smart switches
vendor: cisco model: meeting server
vendor: cisco model: 500 series stackable managed switches
vendor: cisco model: firepower threat defense
vendor: cisco model: small business 300 series managed switches
vendor: cisco model: adaptive security appliance
vendor: cisco model: small business
vendor: cisco model: series stackable managed switches
vendor: cisco model: cisco small business
vendor: cisco model: 200 series smart switches
vendor: cisco model: series
vendor: cisco model: cisco adaptive security appliance
vendor: d-link model: dsl-3782
vendor: d-link model: dsl-3782 eu
vendor: openstack model: neutron
vendor: openstack model: openstack neutron
vendor: contiki model: contiki
vendor: freeswitch model: freeswitch
vendor: opc foundation model: local discovery server
db: NVD ids: CVE-2021-40712, CVE-2021-41079, CVE-2021-40871, CVE-2021-40463, CVE-2021-42766, CVE-2021-41456, CVE-2021-41168, CVE-2021-43519, CVE-2021-42697, CVE-2021-42340, CVE-2021-40985, CVE-2021-41105, CVE-2021-41380, CVE-2021-41865, CVE-2021-42260, CVE-2021-42715, CVE-2021-41294, CVE-2021-41213, CVE-2021-41872, CVE-2021-41799, CVE-2021-42765, CVE-2021-41186, CVE-2021-40797, CVE-2021-41195, CVE-2021-41459, CVE-2021-41118, CVE-2021-42836, CVE-2021-41099, CVE-2021-42764, CVE-2009-1234, CVE-2021-41055, CVE-2021-41208, CVE-2021-41356, CVE-2021-42084, CVE-2021-40872, CVE-2021-42274, CVE-2021-40523, CVE-2021-40526, CVE-2021-40524, CVE-2021-40732, CVE-2021-41457, CVE-2021-40516, CVE-2021-41800, CVE-2021-42075, CVE-2021-41145, CVE-2021-29584, CVE-2021-40498, CVE-2021-40873, CVE-2021-42917, CVE-2021-41821, CVE-2021-42284, CVE-2021-40495

NVD - CVE-2021-34739

Trust: 4.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 3, 2022, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: sf500-48p
vendor: cisco model: sf250-26p
vendor: cisco model: sg200-50p_firmware
vendor: cisco model: sf250-26hp
vendor: cisco model: sg300-10sfp_firmware
vendor: cisco model: sf250x-48p_firmware
vendor: cisco model: sf302-08
vendor: cisco model: sg500xg-8f8t
vendor: cisco model: esw2-350g-52dc_firmware
vendor: cisco model: sf500-24mp_firmware
vendor: cisco model: sf550x-48
vendor: cisco model: sf250x-24
vendor: cisco model: sg300-10sfp
vendor: cisco model: sg500-52
vendor: cisco model: sf250x-48
vendor: cisco model: sg500-52_firmware
vendor: cisco model: sf250-50hp
vendor: cisco model: sf300-24pp
vendor: cisco model: sf550x-24mp_firmware
vendor: cisco model: sf250-48_firmware
vendor: cisco model: sg200-50
vendor: cisco model: sg300-10p
vendor: cisco model: sg300-10pp
vendor: cisco model: sx550x-12f_firmware
vendor: cisco model: sg200-26fp
vendor: cisco model: sg350x-48p_firmware
vendor: cisco model: sg500-28p
vendor: cisco model: sx550x-12f
vendor: cisco model: sg300-10mp_firmware
vendor: cisco model: sx550x-52
vendor: cisco model: sg350xg-48t
vendor: cisco model: sf302-08pp
vendor: cisco model: sf550x-24
vendor: cisco model: sg200-26_firmware
vendor: cisco model: sf250-48hp
vendor: cisco model: sf500-48mp_firmware
vendor: cisco model: sg500x-48mp_firmware
vendor: cisco model: sf250-26_firmware
vendor: cisco model: sg500-28
vendor: cisco model: sg500-28p_firmware
vendor: cisco model: sg300-10pp_firmware
vendor: cisco model: sf350-48p_firmware
vendor: cisco model: sf500-24p_firmware
vendor: cisco model: sg500xg-8f8t_firmware
vendor: cisco model: sg500x-24
vendor: cisco model: sf550x-48_firmware
vendor: cisco model: sg500x-24_firmware
vendor: cisco model: sf350-48p
vendor: cisco model: sg350x-48mp
vendor: cisco model: sx550x-24f
vendor: cisco model: sf250-50p
vendor: cisco model: sg300-10_firmware
vendor: cisco model: sf250-50hp_firmware
vendor: cisco model: sf500-48mp
vendor: cisco model: sx550x-24f_firmware
vendor: cisco model: sg500-52mp
vendor: cisco model: sf300-08
vendor: cisco model: sf300-48pp
vendor: cisco model: sg300-10p_firmware
vendor: cisco model: sg350x-48_firmware
vendor: cisco model: sg200-08p_firmware
vendor: cisco model: sg350xg-24f
vendor: cisco model: sg500-28mpp_firmware
vendor: cisco model: sg200-08p
vendor: cisco model: sf250x-48p
vendor: cisco model: sg300-52_firmware
vendor: cisco model: sf302-08p_firmware
vendor: cisco model: sg200-08_firmware
vendor: cisco model: sg500x-48_firmware
vendor: cisco model: sg550x-48mp_firmware
vendor: cisco model: sg300-28pp
vendor: cisco model: sg300-10mp
vendor: cisco model: sg500-28_firmware
vendor: cisco model: sg550x-24
vendor: cisco model: sg200-26
vendor: cisco model: sg300-52p
vendor: cisco model: sg300-28mp_firmware
vendor: cisco model: sf500-48
vendor: cisco model: sg550x-48_firmware
vendor: cisco model: sf250-26hp_firmware
vendor: cisco model: sf300-08_firmware
vendor: cisco model: sf250-10p
vendor: cisco model: sf300-48_firmware
vendor: cisco model: sf250-08
vendor: cisco model: sf302-08mpp
vendor: cisco model: sf500-24p
vendor: cisco model: sg500-28mpp
vendor: cisco model: sg350x-24_firmware
vendor: cisco model: sg550x-24_firmware
vendor: cisco model: sf300-24
vendor: cisco model: sf300-48p
vendor: cisco model: sf250-50_firmware
vendor: cisco model: sf250-10p_firmware
vendor: cisco model: sf302-08_firmware
vendor: cisco model: sf350-48
vendor: cisco model: sf250-08hp
vendor: cisco model: sf300-48p_firmware
vendor: cisco model: sg300-52
vendor: cisco model: sg550x-24mp
vendor: cisco model: sg200-26p_firmware
vendor: cisco model: sg300-28sfp
vendor: cisco model: sg300-52mp
vendor: cisco model: sg300-28p_firmware
vendor: cisco model: esw2-350g-52
vendor: cisco model: sg550x-48
vendor: cisco model: sg550x-24p
vendor: cisco model: sg500-52p
vendor: cisco model: sf500-48p_firmware
vendor: cisco model: sf250-18
vendor: cisco model: sg550x-24mp_firmware
vendor: cisco model: sg500x-48p
vendor: cisco model: sg550x-24p_firmware
vendor: cisco model: sf550x-48p_firmware
vendor: cisco model: sg350x-48
vendor: cisco model: sg550x-24mpp_firmware
vendor: cisco model: sf200-24fp_firmware
vendor: cisco model: sf350-48_firmware
vendor: cisco model: sf200-24fp
vendor: cisco model: sg200-08
vendor: cisco model: sf300-48pp_firmware
vendor: cisco model: sg350xg-24t_firmware
vendor: cisco model: sf200-48p
vendor: cisco model: sg200-26p
vendor: cisco model: sf250-48hp_firmware
vendor: cisco model: sg200-10fp
vendor: cisco model: sg350xg-24t
vendor: cisco model: sf250-26p_firmware
vendor: cisco model: sx550x-16ft_firmware
vendor: cisco model: sf250-50
vendor: cisco model: sf300-24pp_firmware
vendor: cisco model: sg350x-48mp_firmware
vendor: cisco model: sg550x-24mpp
vendor: cisco model: sg300-10
vendor: cisco model: sg550x-48p_firmware
vendor: cisco model: sg350xg-2f10_firmware
vendor: cisco model: sf300-48
vendor: cisco model: sg200-26fp_firmware
vendor: cisco model: sf550x-24_firmware
vendor: cisco model: sf250x-24_firmware
vendor: cisco model: sg200-50fp_firmware
vendor: cisco model: sf300-24p
vendor: cisco model: sg350x-48p
vendor: cisco model: sf250-24_firmware
vendor: cisco model: sg300-10mpp
vendor: cisco model: sg350x-24mp
vendor: cisco model: sg350x-24mp_firmware
vendor: cisco model: sg500x-24p
vendor: cisco model: sf300-24mp_firmware
vendor: cisco model: sg500x-24p_firmware
vendor: cisco model: sf200-48_firmware
vendor: cisco model: sg500x-48p_firmware
vendor: cisco model: sg550x-48p
vendor: cisco model: sg300-28_firmware
vendor: cisco model: sg300-20
vendor: cisco model: sf302-08p
vendor: cisco model: sg300-28
vendor: cisco model: sf250-08hp_firmware
vendor: cisco model: esw2-350g-52_firmware
vendor: cisco model: sf250-24p_firmware
vendor: cisco model: sf200-24p
vendor: cisco model: sf250x-24p_firmware
vendor: cisco model: sf250-18_firmware
vendor: cisco model: sf300-24mp
vendor: cisco model: sg200-50_firmware
vendor: cisco model: sg300-28sfp_firmware
vendor: cisco model: sg300-52p_firmware
vendor: cisco model: sf250x-48_firmware
vendor: cisco model: sg350xg-24f_firmware
vendor: cisco model: sf300-24p_firmware
vendor: cisco model: sf250-48
vendor: cisco model: sf302-08pp_firmware
vendor: cisco model: sf550x-48mp
vendor: cisco model: sf200-48
vendor: cisco model: sf250-08_firmware
vendor: cisco model: sg350x-24
vendor: cisco model: sf302-08mp_firmware
vendor: cisco model: sx550x-16ft
vendor: cisco model: sg200-10fp_firmware
vendor: cisco model: sf550x-48mp_firmware
vendor: cisco model: esw2-550x-48_firmware
vendor: cisco model: sf200-24_firmware
vendor: cisco model: sx550x-24
vendor: cisco model: sx550x-24_firmware
vendor: cisco model: sg350x-24p
vendor: cisco model: esw2-550x-48
vendor: cisco model: sg350xg-2f10
vendor: cisco model: sx550x-24ft_firmware
vendor: cisco model: sf550x-24p_firmware
vendor: cisco model: sg200-18
vendor: cisco model: sx550x-24ft
vendor: cisco model: sf250x-24p
vendor: cisco model: sg500x-48mp
vendor: cisco model: sg350xg-48t_firmware
vendor: cisco model: sf250-24
vendor: cisco model: sg200-50fp
vendor: cisco model: sg550x-48mp
vendor: cisco model: sg300-20_firmware
vendor: cisco model: sf550x-24mp
vendor: cisco model: sg350x-24p_firmware
vendor: cisco model: sf200-24
vendor: cisco model: sf200-48p_firmware
vendor: cisco model: sg300-28p
vendor: cisco model: sf250-26
vendor: cisco model: sg200-18_firmware
vendor: cisco model: sf500-24mp
vendor: cisco model: sf302-08mp
vendor: cisco model: sf302-08mpp_firmware
vendor: cisco model: sg500-52p_firmware
vendor: cisco model: sg500x-48
vendor: cisco model: sf500-48_firmware
vendor: cisco model: sf300-24_firmware
vendor: cisco model: sg300-28mp
vendor: cisco model: sf500-24_firmware
vendor: cisco model: esw2-550x-48dc
vendor: cisco model: sg200-50p
vendor: cisco model: sf200-24p_firmware
vendor: cisco model: sf500-24
vendor: cisco model: sf250-50p_firmware
vendor: cisco model: sf250-24p
vendor: cisco model: esw2-550x-48dc_firmware
vendor: cisco model: sf550x-24p
vendor: cisco model: esw2-350g-52dc
vendor: cisco model: sg300-52mp_firmware
vendor: cisco model: sx550x-52_firmware
vendor: cisco model: sg300-28pp_firmware
vendor: cisco model: sf550x-48p
vendor: cisco model: sg300-10mpp_firmware
vendor: cisco model: sg500-52mp_firmware
db: NVD ids: CVE-2021-34739

A Novel Machine Learning-Based Analysis Model for Smart Contract Vulnerability

Trust: 3.5

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Aug. 15, 2021, midnight
 Vulnerabilities: integer overflow, denial of service
Affected productsExternal IDs
vendor: serve model: serve

71 Windows vulnerabilities | Kaspersky official blog

Related entries in the VARIoT vulnerabilities database: VAR-202110-1687

Trust: 5.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-40449, CVE-2021-41335, CVE-2021-40469, CVE-2021-41338

71 Windows vulnerabilities | Kaspersky official blog

Related entries in the VARIoT vulnerabilities database: VAR-202110-1687

Trust: 5.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: privilege escalation, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2021-40449, CVE-2021-41335, CVE-2021-40469, CVE-2021-41338

Fortinet : Security vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202109-0399, VAR-202107-1088, VAR-202107-1086, VAR-202107-0631, VAR-202110-0131, VAR-202111-0232, VAR-202111-0330, VAR-202110-0149, VAR-202109-0502, VAR-202107-0632, VAR-202107-0838, VAR-202110-0132, VAR-202111-0317, VAR-202107-0629, VAR-202107-0837, VAR-202108-0655, VAR-202111-0241, VAR-202107-0836, VAR-202108-0672, VAR-202108-1025, VAR-202107-1087, VAR-202109-0400, VAR-202108-0575, VAR-202109-0501, VAR-202108-2100, VAR-202108-0712, VAR-202108-0658, VAR-202111-0306, VAR-202108-0657, VAR-202108-0673, VAR-202110-0150, VAR-202111-0322, VAR-202106-1430, VAR-202110-0151, VAR-202111-0302, VAR-202107-0839, VAR-202111-0313, VAR-202108-0656, VAR-202108-0674, VAR-202108-0730, VAR-202104-0997, VAR-202111-0231, VAR-202108-0731, VAR-202111-0314, VAR-202111-0305, VAR-202111-0284, VAR-202108-0675, VAR-202111-0343, VAR-202108-0676, VAR-202111-0307

Trust: 5.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: path traversal, denial of service, access control vulnerability...
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2021-24016, CVE-2021-26106, CVE-2021-26099, CVE-2021-24020, CVE-2021-24019, CVE-2021-26107, CVE-2021-36176, CVE-2021-36170, CVE-2021-36182, CVE-2021-24022, CVE-2021-26090, CVE-2021-24021, CVE-2021-36181, CVE-2021-24015, CVE-2021-26089, CVE-2021-32597, CVE-2021-36172, CVE-2021-26088, CVE-2021-32587, CVE-2021-26098, CVE-2021-26100, CVE-2021-24017, CVE-2021-24014, CVE-2021-36179, CVE-2021-24018, CVE-2021-36168, CVE-2021-32603, CVE-2021-36186, CVE-2021-32602, CVE-2021-32588, CVE-2021-36175, CVE-2021-41019, CVE-2009-1234, CVE-2021-26111, CVE-2021-36178, CVE-2021-42754, CVE-2021-26095, CVE-2021-36185, CVE-2021-32598, CVE-2021-32590, CVE-2021-26096, CVE-2021-24024, CVE-2021-32595, CVE-2021-26097, CVE-2021-36174, CVE-2021-36187, CVE-2021-36192, CVE-2021-32594, CVE-2021-36183, CVE-2021-32596, CVE-2021-36184

Cisco Ios Xe version 16.9.6 : Security vulnerabilities

Related entries in the VARIoT vulnerabilities database: VAR-202103-0768, VAR-202109-0747, VAR-202103-0540, VAR-202103-0550, VAR-202103-0773, VAR-202109-0245, VAR-202103-0778, VAR-202103-0546, VAR-202103-0544, VAR-202103-0534, VAR-202103-0763, VAR-202109-0601, VAR-202103-0549, VAR-202103-0470

Trust: 4.5

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: memory corruption, denial of service, command injection
Affected productsExternal IDs
vendor: cisco model: ios software
vendor: cisco model: iox application
vendor: cisco model: cisco ios
vendor: cisco model: cisco iox application
vendor: cisco model: series
vendor: cisco model: catalyst
vendor: cisco model: cisco ios xe
vendor: cisco model: ios xe
vendor: cisco model: ios xe software
vendor: cisco model: cisco iox
vendor: cisco model: series switches
db: NVD ids: CVE-2021-1446, CVE-2021-34699, CVE-2021-1377, CVE-2021-1391, CVE-2021-1435, CVE-2021-1619, CVE-2021-1442, CVE-2021-1390, CVE-2009-1234, CVE-2021-1384, CVE-2021-1403, CVE-2021-1453, CVE-2021-34705, CVE-2021-1376, CVE-2021-1352

Firepower Management Center Configuration Guide, Version 6.2 - System Configuration [Cisco Firepower Management Center] - Cisco

Related entries in the VARIoT vulnerabilities database: VAR-201307-0421

Trust: 3.5

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: cisco model: firepower
vendor: cisco model: firepower management center
vendor: cisco model: cisco firepower management center
vendor: cisco model: router
db: NVD ids: CVE-2013-4786

PSIRT Advisories | FortiGuard

Trust: 4.25

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 5, 2022, midnight
 Vulnerabilities: path traversal, directory traversal
Affected productsExternal IDs

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities - Cisco

Related entries in the VARIoT vulnerabilities database: VAR-202010-1131

Trust: 5.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Jan. 11, 2022, 10:54 p.m.
 Vulnerabilities: cross-site scripting
Affected productsExternal IDs
vendor: cisco model: cisco adaptive security appliance
vendor: cisco model: cisco firepower management center
vendor: cisco model: firepower
vendor: cisco model: asa software
vendor: cisco model: firepower threat defense
vendor: cisco model: firepower threat defense software
vendor: cisco model: adaptive security appliance
vendor: cisco model: device manager
vendor: cisco model: cisco adaptive security appliance software
vendor: cisco model: firepower management center
vendor: cisco model: adaptive security appliance software
db: NVD ids: CVE-2020-3581

2021-10 Security Bulletin: Junos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET) (CVE-2021-31350) - Juniper Networks

Related entries in the VARIoT vulnerabilities database: VAR-202110-0386

Trust: 5.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: Oct. 15, 2021, midnight
 Vulnerabilities: privilege escalation, privilege management vulnerability
Affected productsExternal IDs
db: NVD ids: CVE-2021-31350

PSIRT Advisories | FortiGuard

Related entries in the VARIoT vulnerabilities database: VAR-202110-0132

Trust: 3.0

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
db: NVD ids: CVE-2021-24021
db: FORTIGATE ids: FG-IR-20-098

New Vulnerability Could Put IoT Devices at Risk

Trust: 3.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: code execution
Affected productsExternal IDs
db: NVD ids: CVE-2020-15858

Medical Device Vulnerability in GE Anesthesia and Respiratory Devices - SystemTek

Trust: 4.75

Fetched: Nov. 9, 2021, 12:59 p.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: ge healthcare model: aespire
vendor: ge healthcare model: aestiva
db: NVD ids: CVE-2019-10337